we have a Windows 2016 RD Gateway and some RemoteApp. In remoteapp config, we enabled the "bypass rd gateway server for local addresses" option. From corporate network, remoteapp works well, doesnt go thorugh RD gateway (as expected).
However, on VPN connection (VPN is not limited, no port/protocol filtering etc) remoteapp always goes through RD gateway (instead of using local address settings) . I'm wonder how "bypass rd gateway server for local addresses" algorithm works? Why detect the VPN connection as "external network" and force rdgateway usage?
Solved: there are network profiles in registry HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkList\Profiles If the VPN profile contains the Managed=1 value, mstsc client go directly to the appserver. If the value Managed=0, then goes to RD gateway.